Microsoft published Security Update Guide entries for several CVEs affecting its products, including Windows Hyper-V Information Disclosure Vulnerability CVE-2023-36406 and additional advisories for CVE-2024-26188, CVE-2025-21271, CVE-2025-21274, CVE-2025-21302, CVE-2026-24285, and CVE-2026-25177. The references indicate a continuing stream of vulnerability disclosures across Microsoft’s ecosystem, with Hyper-V specifically identified in one advisory as an information disclosure issue.
The available records provide limited technical detail, but they show Microsoft tracking and publishing these flaws through the MSRC Security Update Guide and portal advisories. For defenders, the immediate takeaway is to review the listed CVEs in Microsoft’s update channels, determine product exposure across Windows and virtualization environments, and prioritize remediation or compensating controls where affected systems are present.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
9 events from the most recent confirmed update back to the earliest known activity.
Microsoft publishes a Security Update Guide advisory for CVE-2025-21296. The supplied reference contains no synopsis or additional technical details.
Microsoft publishes a Security Update Guide advisory for CVE-2025-21315. The supplied reference contains no synopsis or additional technical details.
Microsoft publishes a Security Update Guide advisory for CVE-2026-25177. No additional synopsis or vulnerability details are present in the reference.
Microsoft publishes a Security Update Guide advisory for CVE-2025-21302. The reference does not include a synopsis or technical description.
Microsoft publishes a Security Update Guide advisory for CVE-2025-21274. No further details are included in the provided content.
Microsoft publishes a Security Update Guide advisory for CVE-2025-21271. The supplied reference contains no synopsis or additional context.
Microsoft publishes a Security Update Guide entry for CVE-2024-26188. The reference provides no synopsis or further technical details.
Microsoft's Security Update Guide lists CVE-2023-36406 as a Windows Hyper-V Information Disclosure Vulnerability. No additional synopsis or remediation details are provided in the reference content.
Microsoft publishes a Security Update Guide advisory entry for CVE-2026-24285. The provided reference includes no synopsis or substantive details.
9 references tracked. Mallory keeps watching after this page renders.
msrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourceportal.msrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.